Sandro Etalle
Department / Institute
Group
RESEARCH PROFILE
Sandro Etalle leads the Security group where the approach to system security is multi-faceted and covers offensive and defensive aspects of system security, always targeting concrete security problems and addressing the underlying, fundamental issues at their core. The group’s strength lies precisely in its ability to empirically and theoretically understand the full security process: from attack generation and system management, to policy specification and user aspects. Today,Etalle’s research is focused mainly on network monitoring and intrusion detection, with particular emphasis on the security of industrial control systems. Other topics includes policy specification and enforcement, and incident response. With two PhD students, Etalle founded the company SecurityMatters, bringing the result of their research to the market, and at the same time providing a source for insights into how cybersecurity evolvesin real life, leading to new research challenges.His group’s research spans three areas vital to the security of decentralized and embedded systems: (a) Security policy specification & enforcement (b) Security of embedded systems, and (c) Threat intelligence and defense, sitting at the cutting-edge intersection of these areas, addressing particularly challenging operative and theoretical problems.
The key to security is understanding”
ACADEMIC BACKGROUND
Sandro Etalle obtained his master’s degree in Mathematics at the University of Padova (Italy) and earned his PhD in 1995 at the University of Amsterdam, under the supervision of Prof. K. R. Apt and Prof. A. Bossi. He was a post-doctoral fellow at the University of Amsterdam, Assistant Professor at the universities of Genova (Italy), Maastricht and Twente, where he lead the spearhead program on Security. After a year as a visiting researcher at the University of Trento, he became full professor at the TU/e. Etalle is one of the authors of the Dutch ‘National Cyber Security Research Agenda’, he has been leader of several national and EU projects, and program chair of several international conferences.
Recent Publications
-
You Can't Protect What You Don't Understand: Characterizing an Operational Gas SCADA Network
(2022) -
Similarity-Based Clustering For IoT Device Classification
(2021) -
A Matter of Life and Death
(2020) -
Evaluation framework for network intrusion detection systems for in-vehicle CAN
(2019) -
A survey of network intrusion detection systems for controller area network
(2019)
Current Educational Activities
Ancillary Activities
- Advisor/coach, (a few) startups and spin-offs of the TU/e
- Advisory Board Member, Curiosity VC
- key man (partner) of the fund, CYSERO (Italian VC fund specialized in cybersecurity and robotics)
- Member of the Advisory Board, DMV Accelerator
- Key man (partner) of a VC fund, CYSERO (Italian VC fund specialized in cybersecurity and robotocs)